> When a user hits the site, they get allocated a unique 48 character
session
> ID (allocated by me). If they then login, I tie that sessionId to a
userId
> (both rows in seperate tables)
>
> But I have a design question... They can log-out, but many do not
> (obviously), so what would be the be
This question is more servlet-interest oriented than JBoss oriented. You
might want to check out that mailing list.
(http://archives.java.sun.com/archives/servlet-interest.html)
The typical way I have handled this in the past is to put the userId (if not
the entire User*) into the HTTPSession whe
